Cyber Security Blog Archives - Page 2 of 2

Abstract cybersecurity illustration of AI agent tool calls crossing into shell command execution and defensive containment controls.

MCP Server Command Injection Shows Why AI Tools Need Real Isolation

acint1 week ago03 mins

A critical GitHub advisory for @profullstack/mcp-server shows how unsafe AI tool endpoints can turn domain lookup functionality into unauthenticated remote code execution.

Editorial cybersecurity illustration of Dirty Frag Linux privilege escalation affecting server and container environments

Dirty Frag Turns Linux Footholds Into Root: What Defenders Should Do Now

acint1 week ago04 mins

Microsoft is tracking active Dirty Frag Linux privilege escalation activity. Here is what SMB and gov-contractor defenders should prioritize now.

Editorial cybersecurity illustration of AI agent tool calls becoming shell commands and execution risk.

Prompt Injection Just Became an RCE Problem for AI Agents

acint1 week ago04 mins

Microsoft disclosed Semantic Kernel vulnerabilities showing how prompt injection can cross into code execution when AI agents are connected to unsafe tools. Here is what defenders should review now.

Editorial cybersecurity illustration of an exposed edge firewall under stealthy network attack

PAN-OS Captive Portal Zero-Day Shows Why Internet-Facing Edge Devices Need Immediate Review

acint1 week ago03 mins

Unit 42 reports limited exploitation of CVE-2026-0300, a PAN-OS Captive Portal zero-day. Here is what SMB and government-contractor defenders should check now.

Dark editorial illustration of a cloud worm stealing credentials from containerized cloud infrastructure

PCPJack Shows Cloud Malware Is Moving From Cryptomining to Credential Theft

acint1 week ago03 mins

SentinelLabs reported PCPJack, a cloud-focused worm that evicts TeamPCP artifacts, steals credentials from exposed infrastructure, and spreads across cloud systems.

TBHM Live Training with Jhaddix

Albert LaScola2 years ago2 years ago07 mins

Attending The Bug Hunters Methodology Live training by Jason Haddix was a great experience. I think my goal with writing this post is really to paint a picture of my overall personal experience being new to Bug Bounty Hunting, coming from the Blue Teaming side of things, and to just give this course an honest…

Detecting and Responding to Security Incidents and Why its Difficult.

Albert LaScola2 years ago2 years ago05 mins

Quick Picture of Attacker Vs Defender With the relentless advancement of technology and continuous improvements in security measures, there remains a significant challenge in detecting and responding to security incidents. This difficulty arises partly due to the diverse tactics employed by hackers, nation-states, bad actors, hacktivists, and ransomware gangs, among others, who are constantly devising…

Thumb

Name

Size

Date

IOCs_YARA_TTPs_Posted_Articles/ IOCs_YARA_TTPs_Posted_Articles

IOCs_YARA_TTPs_Posted_Articles

Open 99.71 KB 2024-01-12 January 12, 2024 2024-03-22 March 22, 2024

21 Items
99.71 KB

March 22, 2024

4284ef357b